Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 42: FEDORA-2025-118f6569ff moderate: sql injection in php-adodb

5.22.9. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-118f6569ff 2025-05-11 01:15:12.231763+00:00 -------------------------------------------------------------------------------- Name : php-adodb Product : Fedora 42 Version : 5.22.9 Release : 1.fc42 URL : https://adodb.org/dokuwiki/doku.php?id=index Summary : Database abstraction layer for PHP Description : ADOdb is an object oriented library written in PHP that abstracts database operations for portability. It is modelled on Microsoft's ADO, but has many improvements that make it unique (eg. pivot tables, Active Record support, generating HTML for paging recordsets with next and previous links, cached recordsets, HTML menu generation, etc). ADOdb hides the differences between the different databases so you can easily switch DBs without changing code. -------------------------------------------------------------------------------- Update Information: 5.22.9 -------------------------------------------------------------------------------- ChangeLog: * Fri May 2 2025 Gwyn Ciesla - 5.22.9-1 - 5.22.9 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2363627 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2363627 [ 2 ] Bug #2363628 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2363628 [ 3 ] Bug #2363629 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2363629 [ 4 ] Bug #2363630 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2363630 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-118f6569ff' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Urgent notification regarding Fedora 42 concerning php-adodb with significant SQL injection vulnerability. Prompt measures strongly advised to safeguard database integrity.. php-adodb,Fedora 42,SQL injection,security update. . LinuxSecurity.com Team

Calendar 2 May 11, 2025 Fedora
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorysecurity issuegentoo

Gentoo: GLSA-202304-12 Normal: ADOdb Code Vulnerability Exploit

Multiple vulnerabilities have been found in ADOdb, all of which could allow remote attackers to execute arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201701-59 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: ADOdb: Multiple vulnerabilities Date: January 24, 2017 Bugs: #604714 ID: 201701-59 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been found in ADOdb, all of which could allow remote attackers to execute arbitrary code. Background ========= ADOdb is an abstraction library for PHP creating a common API for a wide range of database backends. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-php/adodb < 5.20.9 > = 5.20.9 Description ========== Multiple vulnerabilities have been discovered in ADOdb. Please review the CVE identifiers referenced below for details. Impact ===== A remote attacker, through the use of SQL injection or Cross Site Scripting (XSS) attacks, could execute arbitrary code. Workaround ========= There is no known workaround at this time. Resolution ========= All ADOdb users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-php/adodb-5.20.9" References ========= [ 1 ] CVE-2016-4855 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-4855 [ 2 ] CVE-2016-7405 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-7405 Availability =========== This GLSA and any updates to it are available for viewing at the GentooSecurity Website: https://security.gentoo.org/glsa/201701-59 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2017 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Numerous security flaws in ADOdb may enable remote attackers to run arbitrary commands. Upgrade to version 5.20.9 to mitigate risks.. ADOdb Security Risk, Gentoo Advisory, Remote Code Execution. . LinuxSecurity.com Team

Calendar 2 Jan 24, 2017 Gentoo
Banner 1 1028x280 1708121660 1771599717
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryhigh severitygentoo

Gentoo: GLSA 200604-07 High: Cacti ADOdb Code Execution Risks

Multiple vulnerabilities have been discovered in the ADOdb layer included in Cacti, potentially resulting in the execution of arbitrary code. [More...]. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200604-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Cacti: Multiple vulnerabilities in included ADOdb Date: April 14, 2006 Bugs: #129284 ID: 200604-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been discovered in the ADOdb layer included in Cacti, potentially resulting in the execution of arbitrary code. Background ========= Cacti is a complete web-based frontend to rrdtool. ADOdb is a PHP-based database abstraction layer which is included in Cacti. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 cacti < 0.8.6h_p20060108-r2 > = 0.8.6h_p20060108-r2 Description ========== Several vulnerabilities have been identified in the copy of ADOdb included in Cacti. Andreas Sandblad discovered a dynamic code evaluation vulnerability (CVE-2006-0147) and a potential SQL injection vulnerability (CVE-2006-0146). Andy Staudacher reported another SQL injection vulnerability (CVE-2006-0410), and Gulftech Security discovered multiple cross-site-scripting issues (CVE-2006-0806). Impact ===== Remote attackers could trigger these vulnerabilities by sending malicious queries to the Cacti web application, resulting in arbitrary code execution, database compromise through arbitrary SQL execution, and malicious HTML or JavaScript codeinjection. Workaround ========= There is no known workaround at this time. Resolution ========= All Cacti users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-analyzer/cacti-0.8.6h_p20060108-r2" References ========= [ 1 ] CVE-2006-0146 https://www.cve.org/CVERecord?id=CVE-2006-0146 [ 2 ] CVE-2006-0147 https://www.cve.org/CVERecord?id=CVE-2006-0147 [ 3 ] CVE-2006-0410 https://www.cve.org/CVERecord?id=CVE-2006-0410 [ 4 ] CVE-2006-0806 https://www.cve.org/CVERecord?id=CVE-2006-0806 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200604-07 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.0/ . Significant vulnerabilities in ADOdb within Cacti may enable remote code execution and SQL injection attacks; an upgrade is advised.. Cacti Security, ADOdb, Gentoo Advisory. . LinuxSecurity.com Team

Calendar 2 Apr 14, 2006 Gentoo
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here